Vulnerabilities > CVE-2006-5017 - Unspecified vulnerability in E-Vision CMS 1.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN e-vision
exploit available
Summary
SQL injection vulnerability in admin/all_users.php in Szava Gyula and Csaba Tamas e-Vision CMS, probably 1.0, allows remote attackers to execute arbitrary SQL commands via the from parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | e-Vision CMS 2.0 (all_users.php) Remote SQL Injection Exploit. CVE-2006-5017. Webapps exploit for php platform |
| id | EDB-ID:2418 |
| last seen | 2016-01-31 |
| modified | 2006-09-22 |
| published | 2006-09-22 |
| reporter | HACKERS PAL |
| source | https://www.exploit-db.com/download/2418/ |
| title | e-Vision CMS 2.0 all_users.php Remote SQL Injection Exploit |
References
- http://secunia.com/advisories/21969
- http://secunia.com/advisories/21969
- http://securityreason.com/securityalert/1642
- http://securityreason.com/securityalert/1642
- http://www.securityfocus.com/archive/1/446706/100/0/threaded
- http://www.securityfocus.com/archive/1/446706/100/0/threaded
- http://www.securityfocus.com/bid/20147
- http://www.securityfocus.com/bid/20147
- http://www.vupen.com/english/advisories/2006/3764
- http://www.vupen.com/english/advisories/2006/3764
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29123
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29123